Buffer Overflow in HP OpenView Network Node Manager
CVE-2011-0268

Currently unrated

Key Information:

Vendor: HP
Status: Openview Network Node Manager
Vendor: CVE Published:; 13 January 2011

Summary

A buffer overflow vulnerability exists in the nnmRptConfig.exe component of HP OpenView Network Node Manager (OV NNM) versions 7.51 and 7.53. This flaw enables remote attackers to potentially execute arbitrary code on vulnerable systems by supplying a specially crafted long 'text1' parameter. Exploiting this vulnerability could lead to unauthorized access and manipulation of the affected network management software.

References

http://www.securityfocus.com/archive/1/515628

vendor-advisoryx_refsource_HP

http://www.vupen.com/english/advisories/2011/0085

vdb-entryx_refsource_VUPEN

http://www.securityfocus.com/archive/1/515628

vendor-advisoryx_refsource_HP

EPSS Score

42% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jan 13, 2011
Vulnerability Reserved
Dec 23, 2010